


Ubuntu Core is a version of Ubuntu optimised For loT-native embedded systems. While Ubuntu delivers the latest and 
greatest open source software for general purpose computing, Ubuntu Core carries only packages and binaries you 
choose For your single-purpose appliance. 
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Ubuntu Core is a container OS built on snaps. With snaps, embedded systems benefit from security, immutability, 
as well as modularity and composability. Software is updated over-the-air through deltas that can automatically 
roll-back in case of failure. 


Canonical supports Ubuntu Core long-term,delivering kernel patches and bug Fixes continuously For up to 10 years. 


Containerised Ubuntu for embedded Linux 









Modular OS architecture 


Application N 








Reusable componenets 


Composable system images 








Bootloader, BSPs, configs Ubuntu root File system 
(gadget snap) (core snap) 









Automated image builds 


Ubuntu Kernel 
(kernel snap) 
App sandboxing 





Below are the components which you can use and reuse for composing custom Ubuntu Core images to power smart devices. 


Snapd 


System daemon exposing a REST API 
that Facilitates device management. 


Gadget snap Core snaps 


Containerised hardware-dependant 
boot assets and configuration files. 


Advanced security out of the box 


Ultra-secure containers 


Snaps are immutable with least privileges by default, which 
make it easy to build tamper-proof devices. 


SSNAP Read-only 
Executables 
$SNAP_DATA Hooks 





Metadata 


$SNAP_COMMON 


SSNAP_USER_DATA 
$SNAP_USER_COMMON 





Secure boot 


Ubuntu Core boots only authenticated software. Secure 
boot ensures the integrity of the software on your devices. 


Applications 
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Application snaps 


Software-defined functionalities of 
embedded devices. 


Custom or standard Ubuntu root file 
systems underlying your apps. 


System snaps 


Audio, power, storage, networking, 
virtualisation and other services. 


Kernel snap 


Kernel image with associated modules, 
firmware and device tree files. 


| Strict confinement 


Kernel-rooted mechanisms stack up to confine applications. 
Confinement prevents malicious software from spreading. 
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Full disk encryption 


Ubuntu Core protects data integrity at rest with encryption. 
Encryption guarantees confidentiality and compliance. 





Ultra-reliable For maximal uptime 


Canonical releases bug fixes and security updates against emerging CVE threats every 3 weeks For up 


10 years to 10 years. Kernel patches applied with minimal downtime. 
OTA Update software on your fleet of devices over-the-air. Ubuntu Core rolls-back updates automatically in 
case of failure. Software updates are atomic and delivered in deltas. 
Ubuntu Core comes with a device recovery system to restore devices distributed in the field. Device 
Low-touch 


Productivity for quick time to market 


operators are able to perform unattended maintenance actions to fix Faulty devices. 





Push to GitHub 


lol app stores 





Get an loT app store For your devices. 
loT app stores are private, hosted, and 
managed cloud backends. Your app 
store is the secure repository From 
where you will release apps to fleets 
of devices. 


Built automatically 


Device management 


Ubuntu Core exposes a builtin REST 
API for secure device management. 
Authenticated clients can perform 
software management and 
configuration tasks on their Ubuntu 
Core devices remotely. 


Released For your users 


Cloud-native toolchain 


Wrnapcreft 


Snapcraft is the developer tool for 
embedding apps to Ubuntu Core. 
Snapcraft easily integrates into your 
CI/CD pipeline for automated loT 
software management. 


Key characteristics 


Minimum requirements 500 Mhz single core processor 
256 MB RAM 
512 MB Storage 

Graphical UI stack Wayland/Mir 

Container runtimes and orchestration Snapd 


Docker, AWS Greengrass, Azure loT Edge 
Kubernetes via Microk8s 
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Application security Isolation via AppArmor and Seccomp 
TPM support 
Secure boot support 
Full disk encryption 

Updates Automatic over the air update 


Atomic updates 
Roll-backs on failure 


CPU support 32 bit / 64 bit, x86 / ARM 
Developer tools Snapcraft 
Device management REST API for flexible implementations 


Compatibility with third-party device management solutions 


Cloud backend Private, hosted and managed loT app store 
Integration with public cloud service providers 
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